JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.197.177.252

20.197.177.252 was found in our database!

This IP was reported 249 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.197.177.252

Whois 20.197.177.252

IP Abuse Reports for 20.197.177.252:

This IP address has been reported a total of 249 times from 201 distinct sources. 20.197.177.252 was first reported on September 26th 2023, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Holger	2026-06-04 11:13:41 (2 hours ago)	WordPress WebAttack	Brute-Force Web App Attack
Anonymous	2026-06-03 13:26:56 (1 day ago)	IP banned by Fail2Ban	Brute-Force SSH
Anonymous	2026-06-03 08:03:34 (1 day ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: WordPress scanning, Cloud secrets probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2026-06-03 04:06:18 (1 day ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇬🇧 andypiper	2026-06-03 01:02:01 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-02 21:59:03 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-02	Web App Attack SSH Hacking
🇳🇱 oisecnet	2026-06-02 21:02:05 (1 day ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-02. 25 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-02. 25 requests from this IP. show less	Brute-Force Web App Attack SSH
Anonymous	2026-06-02 20:58:56 (1 day ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack
Anonymous	2026-06-02 20:30:04 (1 day ago)	\| [Dangerous/Brazil] Aggressive IP 20.197.177.252 (~30 hits). Type: DoS Defender- Web server 400 err ... show more \| [Dangerous/Brazil] Aggressive IP 20.197.177.252 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇫🇷 andreighitan	2026-06-02 19:57:29 (1 day ago)	Coordinated attack against 84.46.253.134. Webshell scanning, credential harvesting (.env, wp-config, ... show more Coordinated attack against 84.46.253.134. Webshell scanning, credential harvesting (.env, wp-config, .git), PHP vuln scanning. Active June 2 2026. ZAC Bayern ref BY0257-500359-26/8. show less	Web App Attack Brute-Force
🇺🇸 Charlesiv	2026-06-02 18:00:46 (1 day ago)	Triggered Cloudflare WAF (botFight) from BR. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Co ... show more Triggered Cloudflare WAF (botFight) from BR. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Corporation) Protocol: HTTP/1.1 (GET method) Endpoint: /about.php Timestamp: 2026-06-02T15:48:10Z Ray ID: a05799ced8434051 UA: Empty string show less	Bad Web Bot
Anonymous	2026-06-02 17:35:46 (1 day ago)	Portscan: TCP/80 (7x), TCP/443	Port Scan
🇮🇩 soc-yk	2026-06-02 15:54:16 (1 day ago)	Type: suspicious_network_activity Risk: 83 Events: 219 Evidence: - Persistent suspicious network ac ... show more Type: suspicious_network_activity Risk: 83 Events: 219 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇺🇸 rsa	2026-06-02 15:48:00 (1 day ago)	GET /cwclass.php HTTP/1.1	DDoS Attack Brute-Force Exploited Host Web App Attack Hacking
🇬🇧 venus.launch.bz	2026-06-02 15:45:03 (1 day ago)	(wpscan) WordPress probe detected from 20.197.177.252 (BR/Brazil/-)	Hacking

Showing 1 to 15 of 249 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.109.141.9

🇺🇸 216.218.206.69

🇬🇧 188.122.37.97

🇷🇺 109.173.39.103

🇬🇧 109.70.144.87

🇺🇸 64.13.118.151

🇷🇺 37.204.22.234

🇬🇧 35.203.211.149

🇬🇧 35.203.210.56

🇩🇪 213.209.159.108

🇺🇸 207.90.244.6

🇦🇷 186.22.94.42

🇳🇱 185.223.235.52

🇮🇳 182.95.233.154

🇳🇱 176.65.139.140

🇺🇸 162.216.149.55

🇺🇸 143.110.150.117

🇧🇩 103.193.73.18

🇮🇹 93.92.76.75

🇧🇬 79.124.58.162